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Ritendra Datta, Jia Li, James Z. Wang 

November 2005 Proceedings of the 13th annual ACM international conference on 
Multimedia MULTIMEDIA '05 

Publisher: ACM Press 

Full text available:^ pdf(308.63 KB) Additional Information: f u ll c itation, abstract, r efer en ces , in de x terms 

We propose IMAGINATION (IMAge Generation for INternet AuthenticaTION), a system for 
the generation of attack-resistant, user-friendly, image-based CAPTCHAs. In our system, 
we produce controlled distortions on randomly chosen images and present them to the 
user for annotation from a given list of words. The distortions are performed in a way that 
satisfies the incongruous requirements of low perceptual degradation and high resistance 
to attack by content-based image retrieval systems. Word choice ... 
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Keeping bots out of online games 
Philippe Golle, Nicolas Ducheneaut 

June 2005 Proceedings of the 2005 ACM SIGCHI International Conference on 
Advances in computer entertainment technology ACE '05 

Publisher: ACM Press 

Full text available: t g| pdfd 33.20 KB) Additional Information: full citation , abstract , references 

We study the problem of restricting participation in online games to human players, so 
they can enjoy the game without interference from automated playing agents known as 
bots. We propose a range of techniques, both software and hardware based, to 
distinguish bots from human players in a wide variety of online games, from poker to 
"shoot'em ups." 

Games: Preventing bots from playing on line games 
Philippe Golle, Nicolas Ducheneaut 

July 2005 Computers in Entertainment (CIE), volume 3 issue 3 
Publisher: ACM Press 

Full text available: c Qpdf(21 0.1 6 KB) Additional Information: full citation , abstract, references, index terms 
As multiplayer online gaming gains in economic and social importance, an increasingly 
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large number of players is beginning to rely on bots (automated player agents) to gain 
unfair advantages in games. In this article we study the problem of restricting 
participation in online games to human players so they can enjoy the game without 
interference from the bots. We propose two broad approaches to prevent bots from 
playing online games. The first consists of seamlessly integrating software-based te ... 

Keywords: CAPTCHAs, agents, bots, games, reverse Turing test 



Telling humans and computers apart automatically 
Luis von Ahn, Manuel Blum, John Langford 
February 2004 Communications of the ACM, volume 47 issue 2 

Publisher: ACM Press 

Full text available: 'g) pdf(1 06.33 KB) Additional Information: full citation, abstract, references , citings, index 
|ij html(18.53 KB) terms 

How lazy cryptographers do AI. 

5 Towards Blocking Outgoing Malicious Impostor Emails 
Erhan J. Kartaltepe, Shouhuai Xu 

June 2006 Proceedings of the 2006 International Symposium on on World of 
Wireless, Mobile and Multimedia Networks WOWMOM 06 

Publisher: IEEE Computer Society 

Full text available: pdf(320.41 KB) Additional Information: full citation , abstract , index terms 

Electronic mails (emails) have become an indispensable part of most people's daily 
routines. However, they were not designed for deployment in an adversarial environment, 
which explains why there have been so many incidents such as spamming and phishing. 
Malicious impostor emails sent by sophisticated attackers are perhaps even more 
damaging, because their contents, except the attachments, may look perfectly legitimate 
while silently targeting certain critical information such as cryptographic k ... 

6 Communication privacy: How. to achieve blocking resistance for existing systems 
<H> enablin g anon ymous web surf i n g 

V Stefan Kopsell, Ulf Hillig 

October 2004 Proceedings of the 2004 ACM workshop on Privacy in the electronic 

society WPES '04 
Publisher: ACM Press 

Full text available: t Q pdf( 89 7.66 KB ) Additional Information: full citation , abstract , references , index terms 

We are developing a blocking resistant, practical and usable system for anonymous web 
surfing. This means, the system tries to provide as much reachability and availability as 
possible, even to users in countries where the free flow of information is legally, 
organizationally and physically restricted. The proposed solution is an add-on to existing 
anonymity systems. First we give a classification of blocking criteria and some general 
countermeasures. Using these techniques, we outline a cone ... 

Keywords: AN. ON, JAP, Mix, blocking resistance 
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Multi-a g ent systems and social behavior : Blind sale s in ele c tronic commerce 
E. Aimeur, G. Brassard, F. S. Mani Onana 

March 2004 Proceedings of the 6th international conference on Electronic commerce 
ICEC 04 

Publisher: ACM Press 

Full text available: ^ pdf(330.05 KB) Additional Information: full citation, abstract, references, citings 
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We start with the usual paradigm in electronic commerce: a consumer who wants to buy 
from a merchant. However, both parties wish to enjoy maximal privacy. In addition to 
remaining anonymous, the consumer wants to hide her browsing pattern and even the 
identification of the product she may decide to buy. Nevertheless, she wants to be able to 
negotiate the price, pay, receive the product and even enjoy maintenance on it. On the 
other hand, the merchant wants to leak as little information as possib ... 

Keywords: CAPTCHA, anonymous surfing, cryptography, customer buying behaviour, 
electronic commerce, oblivious transfer, private information retrieval 



8 Session 1: On instant messaging worms, analysis and countermeasures 
Mohammad Mannan, Paul C. van Oorschot 

November 2005 Proceedings of the 2005 ACM workshop on Rapid malcode WORM '05 
Publisher: ACM Press 

i- ii * . t ui cs*i ^f/Ho^ iyn^ Additional Information: full citation, abstract, references, citings, index 

Full text available: t?j pdf(1 86.53 KB) - * 

^ " terms 

We provide a collection of minor results on the area of Instant Messaging (IM) worms, 
which has received relatively little attention in the formal literature. We review selected 
IM worms and summarize their main characteristics, motivating a brief overview of the 
network formed by IM contact lists, and a discussion of theoretical consequences of 
worms in such networks. Existing methods to restrict an IM worm epidemic are analyzed 
in terms of usability and effectiveness, leading to the suggestion ... 

Keywords: instant messaging worms, scale-free networks 



DDoS defense by offense 

Michael Walfish, Mythili Vutukuru, Hari Balakrishnan, David Karger, Scott Shenker 
August 2006 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2006 conference on Applications, technologies, architectures, and 
protocols for computer communications SIGCOMM '06, volume 36 issue 4 
Publisher: ACM Press 

Full text available: *g| pdf(334.96 KB ) Additional Information: ful l citatio n, abst ract, r efere nces. LntejUe/ms 

This paper presents the design, implementation, analysis, and experimental evaluation of 
speak-up, a defense against application-level distributed denial-of-service (DDoS), in 
which attackers cripple a server by sending legitimate-looking requests that consume 
computational resources (e.g., CPU cycles, disk). With speak-up, a victimized server 
encourages all clients, resources permitting, to automatically send higher volumes of 
traffic. We suppose that attackers are a ... 

Keywords: DoS attack, bandwidth, currency 



10 Secure distributed human com p utation Q 

# Craig Gentry, Zulfikar Ramzan, Stuart Stubblebine 
June 2005 Proceedings of the 6th ACM conference on Electronic commerce EC '05 
Publisher: ACM Press 

Full text available:^ pdf(257. 80 KB) Additional Information: full citation, abstract, references, index terms 

This paper is a preliminary exploration of secure distributed human computation. We 
consider the general paradigm of using large-scale distributed computation to solve 
difficult problems, but where humans can act as agents and provide candidate solutions. 
We are especially motivated by problem classes that appear to be difficult for computers 
to solve effectively, but are easier for humans; e.g., image analysis, speech recognition, 
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and natural language processing. This paradigm already se ... 
Keywords: B24b, human distributed computation 



1 1 DOS protection: Using graphic turing tests to counter automated DDpS attacks 
<H> against web servers 

^ William G. Morein, Angelos Stavrou, Debra L. Cook, Angelos D. Keromytis, Vishal Misra, Dan 
Rubenstein 

October 2003 Proceedings of the 10th ACM conference on Computer and 

communications security CCS '03 
Publisher: ACM Press 

Full text available- t P] pdf(256. 83 KB ) Addit ' onal Information: full citation, abstract , references , citings, index 

terms 

We present WebSOS, a novel overlay-based architecture that provides guaranteed access 
to a web server that is targeted by a denial of service (DoS) attack. Our approach exploits 
two key characteristics of the web environment: its design around a human-centric 
interface, and the extensibility inherent in many browsers through downloadable 
"applets." We guarantee access to a web server for a large number of previously unknown 
users, without requiring pre-existing trust relationships between ... 

Keywords: Java, graphic turing tests, web proxies 
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The use of passwords is a major point of vulnerability in computer security, as passwords 
are often easy to guess by automated programs running dictionary attacks. Passwords 
remain the most widely used authentication method despite their well-known security 
weaknesses. User authentication is clearly a practical problem. From the perspective of a 
service provider this problem needs to be solved within real-world constraints such as the 
available hardware and software infrastructures. From a user' ... 
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While massively multiplayer on-line games (MMOs) are enormously popular, their use of 
the client-server architecture causes them to suffer from scalability issues and high 
maintenance costs. In contrast, the public server architecture employed by most first- 
person shooter (FPS) games scales more easily by relying on user-supplied hosting and 
user-generated content, but lacks persistence between servers that is required in the 
MMO genre. This paper examines an architecture that leverages the r ... 
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Web services designed for human users are being abused by computer programs (bots). 
The bots steal thousands of free email accounts in a minute; participate in online polls to 
skew results; and irritate people by joining online chat rooms. These real-world issues 
have recently generated a new research area called Human Interactive Proofs (HIP), 
whose goal is to defend services from malicious attacks by differentiating bots from 
human users. In this paper, we propose a new HIP algorithm based on ... 

Keywords: CAPTCHA, face and facial feature detection, human interactive proof (HIP), 
turing test, web services security 
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Web services designed for human users are being abused by computer programs (bots). 
The bots steal thousands of free email accounts in a minute; participate in online polls to 
skew results; and irritate people by joining online chat rooms. These real-world issues 
have recently generated a new research area called Human Interactive Proofs (HIP), 
whose goal is to defend services from malicious attacks by differentiating bots from 
human users. We propose a new HIP algorithm based on detecting human ... 

Keywords: CAPTCHA, face and facial feature detection, human interactive proof (HIP), 
turing test, web services security 
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HIPs, or Human Interactive Proofs, are challenges meant to be easily solved by humans, 
while remaining too hard to be economically solved by computers. HIPs are increasingly 
used to protect services against automatic script attacks. To be effective, a HIP must be 
difficult enough to discourage script attacks by raising the computation and/or 
development cost of breaking the HIP to an unprofitable level. At the same time, the HIP 
must be easy enough to solve in order to not discourage humans from ... 

Keywords: completely automated public turing tests to tell computers and humans apart 
(CAPTCHAs), computer vision, evaluation, human interaction proofs (HIPs), human 
perception, visual letter recognition 
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Queue's first-ever narrative chronicles one man's transition from small-time hacker to big- 
time crook. 
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We present an effective method of eliminating unsolicited electronic mail (so-called spam) 
and discuss its publicly accessible prototype implementation. A subscriber to our system is 
able to obtain an unlimited number of aliases of his/her permanent (protected) E-Mail 
address to be handed out to parties willing to communicate with the subscriber. It is also 
possible to set up publishable aliases, which can be used by human correspondents to 
contact the subscriber, while being useless to h ... 
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This paper presents a new privacy model for hiding the information interests of a 
homogenous group of users who share a local area network and an access point to the 
Web. The suggested model is aimed at preventing eavesdroppers from using identifiable 
members' tracks to infer the group common interests (referred to as the group profile) 
while allowing members of the group to identify themselves to various services. The 
model consists of generating faked transactions in various fields of interest ... 

Keywords: Web-security, privacy, user-groups, user-profile 



Results 1 - 20 of 54 Result page: 12 3 next 

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2007 ACM, Inc. 




http://portal.acm.org/resultsxfm?coll=ACM&dl=ACM&CFID=19556804 5/24/2007 



, «■ Results (page 1): captcha Page 7 of 7 

Terms of Usage Privacy Poli cy Code of Ethics Contact Us 
Useful downloads: S Adobe Acrobat Q QuickTime HI Windows Media Pla yer ^> Real Play er 



http://portal.acm.org/results.cfm?coll=ACM&dl=ACM&CFID=19556804&CFTOKEN=9... 5/24/2007 



